GitHub Exam GitHub-Advanced-Security Topic 7 Question 6 Discussion

Actual exam question for GitHub's GitHub-Advanced-Security exam

Question #: 6
Topic #: 7

[All GitHub-Advanced-Security Questions]

-- [Use Code Scanning with CodeQL]

How would you build your code within the CodeQL analysis workflow? (Each answer presents a complete solution. Choose two.)

AUpload compiled binaries.

BUse CodeQL's init action.

CIgnore paths.

DImplement custom build steps.

EUse jobs.analyze.runs-on.

FUse CodeQL's autobuild action.

Show Suggested Answer

Suggested Answer: D, F

Comprehensive and Detailed Explanation:

When setting up CodeQL analysis for compiled languages, there are two primary methods to build your code:

GitHub Docs

Autobuild: CodeQL attempts to automatically build your codebase using the most likely build method. This is suitable for standard build processes.

GitHub Docs

Custom Build Steps: For complex or non-standard build processes, you can implement custom build steps by specifying explicit build commands in your workflow. This provides greater control over the build process.

GitHub Docs

The init action initializes the CodeQL analysis but does not build the code. The jobs.analyze.runs-on specifies the operating system for the runner but is not directly related to building the code. Uploading compiled binaries is not a method supported by CodeQL for analysis.

by Svetlana at May 02, 2025, 03:41 PM

Limited Time Offer

25%

Off

Get Premium GitHub-Advanced-Security Questions as Interactive Web-Based Practice Test or PDF